CVE-2021-31437
Foxit Studio Photo 3.6.6.931 contains an out-of-bounds write in JP2 file parsing due to insufficient input validation, enabling remote code execution. Exploitation requires user interaction (visiting a malicious page or opening a malicious file). The issue is documented by ZDI (ZDI-21-480). No re...